June 1993 - cypherpunks-legacy

CPSR NIST Crypto Statement
by Dave Banisar 03 Jun '93

03 Jun '93

CPSR NIST Crypto Statement Department of Commerce National Institute of Standards and Technology Computer System Security and Privacy Advisory Board Review of Cryptography Policy June 1993 Statement of CPSR Washington office Marc Rotenberg, director (rotenberg(a)washofc.cpsr.org) with David Sobel, legal counsel, Dave Banisar, policy analyst Mr. Chairman, members of the Advisory Panel, thank you for the opportunity to speak today about emerging issues on cryptography policy. My name is Marc Rotenberg and I am director of the CPSR Washington office. Although CPSR does not represent any computer firm or industry trade association, we speak for many in the computer profession who value privacy and are concerned about the government's Clipper proposal. During the last several years CPSR has organized several meetings to promote public discussion of cryptography issues. We have also obtained important government documents through the Freedom of Information Act. We believe that good policies will only result if the public, the profession, and the policy makers are fully informed about the significance of these recent proposals. We are pleased that the Advisory Board has organized hearings. This review of cryptography policy will help determine if the Clipper proposal is in the best interests of the country. We believe that a careful review of the relevant laws and policies shows that the key escrow arrangement is at odds with the public interest, and that therefore the Clipper proposal should not go forward. Today I will address issues 1 through 3 identified in the NIST announcement, specifically the policy requirements of the Computer Security Act, the legal issues surrounding the key escrow arrangement, and the importance of privacy for network development. 1. CRYPTOGRAPHY POLICY The first issue concerns the 1987 statute enacted to improve computer security in the federal government, to clarify the responsibilities of NIST and NSA, and to ensure that technical standards would serve civilian and commercial needs. The Computer Security Act, which also established this Advisory Panel, is the true cornerstone of cryptography policy in the United States. That law made clear that in the area of unclassified computing systems, the Department of Commerce and not the Department of Defense, would be responsible for the development of technical standards. It emphasized public accountability and stressed open decision-making. The Computer Security Act grew out of a concern that classified standards and secret meetings would not serve the interests of the general public. As the practical applications for cryptography have moved from the military and intelligence arenas to the commercial sphere, this point has become clear. There is also clearly a conflict of interest when an agency tasked with signal interception is also given authority to develop standards for network security. In the spirit of the Computer Security Act, NIST set out in 1989 to develop a public key standard FIPS. In a memo dated May 5, 1989 and obtained by CPSR through the Freedom of Information Act, NIST said that it planned: to develop the necessary public-key based security standards. We require a public-key algorithm for calculating digital signatures and we also require a public-key algorithm for distributing secret keys. NIST then went on to define the requirements of the standard: The algorithms that we use must be public, unclassified, implementable in both hardware or software, usable by federal Agencies and U.S. based multi-national corporation, and must provide a level of security sufficient for the protection of unclassified, sensitive information and commercial propriety and/or valuable information. The Clipper proposal and the full-blown Capstone configuration, which incorporates the key management function NIST set out to develop in 1989, is very different from the one originally conceived by NIST. % The Clipper algorithm, Skipjack, is classified, % Public access to the reasons underlying the proposal is restricted, % Skipjack can be implemented only in tamper-proof hardware, % It is unlikely to be used by multi-national corporations, and % Its security remains unproven. The Clipper proposal undermines the central purpose of the Computer Security Act. Although intended for broad use in commercial networks, it was not developed at the request of either U.S. business or the general public. It does not reflect public goals. Rather it reflects the interests of one secret agency with the authority to conduct foreign signal intelligence and another government agency responsible for law enforcement investigations. It is our belief that the Clipper proposal clearly violates the intent of the Computer Security Act of 1987. What is the significance of this? It is conceivable that an expert panel of cryptographers will review the Skipjack algorithm and find that it lives up its billing, that there is no "trap door" and no easy way to reverse-engineer. In fact, the White House has proposed just such a review process But is this process adequate? Is this the procedure the Advisory Board would endorse for the development of widespread technical standards? The expert participants will probably not be permitted to publish their assessments of the proposal in scientific journals, further review of the standard will be restricted, and those who are skeptical will remain in the dark about the actual design of the chip. This may be an appropriate process for certain military systems, but it is clearly inappropriate for a technical standard that the government believes should be widely incorporated into the communications infrastructure. Good government policy requires that certain process goals be satisfied. Decisions should be made in the open. The interests of the participating agencies should be clear. Agencies should be accountable for their actions and recommendations. Black boxes and government oversight are not compatible. There is an even greater obligation to promote open decisions where technical and scientific issues are at stake. Innovation depends on openness. The scientific method depends on the ability of researchers to "kick the tires" and "test drive" the product. And, then, even if it is a fairly good design, additional testing encourages the development of new features, improved performance and reduced cost. Government secrecy is incompatible which such a development process. Many of these principles are incorporated into the Computer Security Act and the Freedom of Information Act. The current government policy on the development of unclassified technical standards, as set out in the Computer Security Act, is a very good policy. It emphasizes public applications, stresses open review, and ensures public accountability. It is not the policy that is flawed. It is the Clipper proposal. To accept the Clipper proposal would be to endorse a process that ran contrary to the law, that discourages innovation, and that undermines openness. 2. LEGAL AND CONSTITUTIONAL ISSUES There are several legal and constitutional issues raised by the government's key escrow proposal. The premise of the Clipper key escrow arrangement is that the government must have the ability to intercept electronic communications, regardless of the economic or societal costs. The FBI's Digital Telephony proposal, and the earlier Senate bill 266, was based on the same assumption. There are a number of arguments made in defense of this position: that privacy rights and law enforcement needs must be balanced, or that the government will be unable to conduct criminal investigations without this capability. Regardless of how one views these various claims, there is one point about the law that should be made very clear: currently there is no legal basis -- in statute, the Constitution or anywhere else -- that supports the premise which underlies the Clipper proposal. As the law currently stands, surveillance is not a design goal. General Motors would have a stronger legal basis for building cars that could not go faster than 65 miles per hour than AT&T does in marketing a commercial telephone that has a built-in wiretap capability. In law there is simply nothing about the use of a telephone that is inherently illegal or suspect. The federal wiretap statute says only that communication service providers must assist law enforcement in the execution of a lawful warrant. It does not say that anyone is obligated to design systems to facilitate future wire surveillance. That distinction is the difference between countries that restrict wire surveillance to narrow circumstances defined in law and those that treat all users of the telephone network as potential criminals. U.S. law takes the first approach. Countries such as the former East Germany took the second approach. The use of the phone system by citizens was considered inherently suspect and for that reason more than 10,000 people were employed by the East German government to listen in on telephone calls. It is precisely because the wiretap statute does not contain the obligation to incorporate surveillance capability -- the design premise of the Clipper proposal -- that the Federal Bureau of Investigation introduced the Digital Telephony legislation. But that legislation has not moved forward on Capitol Hill and the law has remained unchanged. The Clipper proposal attempts to accomplish through the standard-setting and procurement process what the Congress has been unwilling to do through the legislative process. On legal grounds, adopting the Clipper would be a mistake. There is an important policy goal underlying the wiretap law. The Fourth Amendment and the federal wiretap statute do not so much balance competing interests as they erect barriers against government excess and define the proper scope of criminal investigation. The purpose of the federal wiretap law is to restrict the government, it is not to coerce the public. Therefore, if the government endorses the Clipper proposal, it will undermine the basic philosophy of the federal wiretap law and the fundamental values embodied in the Constitution. It will establish a technical mechanism for signal interception based on a premise that has no legal foundation. I am not speaking rhetorically about "Big Brother." My point is simply that the assumption underlying the Clipper proposal is more compatible with the practice of telephone surveillance in the former East Germany than it is with the narrowly limited circumstances that wire surveillance has been allowed in the United States. There are a number of other legal issues that have not been adequately considered by the proponents of the key escrow arrangement that the Advisory Board should examine. First, not all lawful wiretaps follow a normal warrant process. It is critical that the proponents of Clipper make very clear how emergency wiretaps will be conducted before the proposal goes forward. Second, there may be civil liability issues for the escrow agents if there is abuse or compromise of the keys. Escrow agents may be liable for any harm that results. Third, there is a Fifth Amendment dimension to the proposed escrow key arrangement if a network user is compelled to disclose his or her key to the government in order to access a communications network. Each one of these issues should be examined. There is also one legislative change that we would like the Advisory Board to consider. During our FOIA litigation, the NSA cited a 1951 law to withhold certain documents that were critical to understand the development of the Digital Signature Standard. The law, passed grants the government the right restrict the disclosure of any classified information pertaining to cryptography. While the government may properly withhold classified information in FOIA cases, the practical impact of this particular provision is to provide another means to insulate cryptographic policy from public review. Given the importance of public review of cryptography policy, the requirement of the Computer Security Act, and the Advisory Board's own commitment to an open, public process, we ask the Advisory Board to recommend to the President and to the Congress that section 798 be repealed or substantially revised to reflect current circumstances. This is the one area of national cryptography policy where we believe a change is necessary. 3. INDIVIDUAL PRIVACY Communications privacy remains a critical test for network development. Networks that do not provide a high degree of privacy are clearly less useful to network users. Given the choice between a cryptography product without a key escrow and one with a key escrow, it would be difficult to find a user who would prefer the key escrow requirement. If this proposal does go forward, it will not be because network users or commercial service providers favored it. Many governments are now facing questions about restrictions on cryptography similar to the question now being raised in this country. It is clear that governments may choose to favor the interests of consumers and businesses over law enforcement. Less than a month ago, the government of Australia over-rode the objections of law enforcement and intelligence agencies and allowed the Australian telephone companies to go forward with new digital mobile phone networks, GSM, using the A5 robust algorithm. Other countries will soon face similar decisions. We hope that they will follow a similar path To briefly summarize, the problem here is not the existing law on computer security or policies on cryptography and wire surveillance. The Computer Security Act stresses public standards, open review, and commercial applications. The federal wiretap statute is one of the best privacy laws in the world. With the exception of one provision in the criminal code left over from the Cold War, our current cryptography policy is very good. It reflects many of the values -- individual liberty, openness, government accountability -- that are crucial for democratic societies to function. The problem is the Clipper proposal. It is an end-run around policies intended to restrict government surveillance and to ensure agency accountability. It is an effort to put in place a technical configuration that is at odds with the federal wiretap law and the protection of individual privacy. It is for these reasons that we ask the Advisory Board to recommend to the Secretary of Commerce, the White House, and the Congress that the current Clipper proposal not go forward. I thank you for the opportunity to speak with you about these issues. I wish to invite the members of the Advisory Committee to the third annual CPSR Privacy and Cryptography conference that will be held Monday, June 7 in Washington, DC at the Carnegie Endowment for International Peace. That meeting will provide an opportunity for further discussion about cryptography policy. ATTACHMENTS "TWG Issue Number: NIST - May 5, 1989," document obtained by CPSR as a result of litigation under the Freedom of Information Act. "U.S. as Big Brother of Computer Age," The New York Times, May 6, 1993, at D1. "Keeping Fewer Secrets," Issues in Science and Technology, vol. IX, no. 1 (Fall 1992) "The Only Locksmith in Town," The Index on Censorship (January 1990) [The republication of these articles for the non-commercial purpose of informing the government about public policy is protected by section 107 of the Copyright Act of 1976] ===============================================

1 0

Term software development/design
by greg＠ideath.goldenbear.com 03 Jun '93

03 Jun '93

-----BEGIN PGP SIGNED MESSAGE----- Re development of crypto term software for PC and/or Unix platform(s): It seems like there are three general ways to approach this problem: 1. Offline reader style - ala QuickMail and its cronies - popular with DOS BBS's. 2. Waffle/UUPC style. 3. As an actual term program, but with an intelligent scrollback buffer/ASCII send module added. I have, several times, wished for a "guerilla offline reader" - a reader to collect all of the messages in all of the newsgroups (from my .newsrc file) that I read on some arbitrary Unix box, collect them into a file, compress it, and send them to my PC with Zmodem, so that I can browse at my leisure. Waffle/UUPC and a newsfeed is a better solution, but requires the cooperation of one's local sysadmin, who isn't necessarily interested in feeding someone news at 2400 bps. The ironic thing is that they don't care if you spend 4 hrs/day using that modem to read news - they just don't want you to tie it up for 45 mins with a small newsfeed. (Yes, there is the spool directory problem - and no, I don't think a flamewar about admins is useful here.) If we/I did something like this - it ought to be possible to do it in a shell script, or shell script + awk - and incorporated the means to receive/unpack a reply packet - I think it might be a good thing. The basic idea is to expand the access one's got via a networked Unix box to one's home machine, without necessarily requiring the permission or knowledge of local sysadmins. (No, I am not unfamiliar with the plight or circumstances of an arbitrary Unix sysadmin. I administrate a small system now, have been in charge of larger ones in the past, and have some experience with users doing peculiar and squirrely stuff with one's machine. :) I also don't think that what I'm proposing breaks either the letter or the intent of a reasonable security policy - but it is the sort of thing to make a control freak sysadmin go nuts.) Seems like the best way to implement the term program would be to add some intelligence to the "scrollback" (a buffer that holds the last 'n' lines of text appearing on the screen) which would allow it to find, extract, and process the --- BEGIN PGP SIGNATURE --- bits. The other side of this would be a process which would, given the name of a file on disk (or an editor buffer) locally, process it (sign,encrypt,whatever) and upload the results. This would be interesting, but I dunno if we'd be able to write something nice enough to become as widespread as Telix, Procomm, or whatever. (I also wonder if it's possible to add hooks to Telix/Procomm to do similar stuff.) For what it's worth, I have experience in C, and have fooled around with little assembly programs to read/write the PC's serial port on an interrupt-driven basis. (The use of a FOSSIL driver seems intelligent here, though.) I have written a PGP keyserver to run as an attachment to a DOS Waffle system, and intend to expand and improve that if I can get some free time. I'm interested in working on this stuff but am less interested in re-inventing any wheels. -----BEGIN PGP SIGNATURE----- Version: 2.2 iQCVAgUBLAw+f33YhjZY3fMNAQHdTAQAr9sk4WdPxC/Bz8i5tEZ/ammwaUt6rEtL 13wMPT+L9JXGrgMNoey6EGjmrHXH9C0DweXGhPYIzq9U8EW9xmsacwEPets+sVJv T90gM/+aeQkixgRb93FIqIpCnRVzF9lQcin0v4e69s6mMk0y6WTQMEJkDXbKvKTM lCK6WBakWws= =QCej -----END PGP SIGNATURE----- -- Greg Broiles greg(a)goldenbear.com Golden Bear Computer Consulting +1 503 465 0325 Box 12005 Eugene OR 97440 BBS: +1 503 687 7764

5 4

Re: CryptoStacker, long
by Doug Porter 03 Jun '93

03 Jun '93

RYAN Alan Porter (unrelated AFAIK) asks: > 2) How the hell to intercept the read/write routines? I can help with the guts of DOS, BIOS, network interfaces, etc. My development time is committed, but feel free to email me with questions, folks. The simplest approach is probably Microsoft's Network Redirector interface. It's used for MSCDEX, and just about every LAN OS except Novell's, including Microsoft's own LAN Manager. A good reference is "Undocumented DOS" by Andrew Schulman et al. This is the only option discussed here I haven't used personally. It looks ideal for this application. Another possibility is hooking the DOS API itself. This certainly works well; it's the way Netware does it. I've found it a lot of work. See IBM's "Disk Operating System" manual for details. There was a mainframe manual by the same name, so be sure you're getting the PC version. Just under DOS itself is what Microsoft officially refers to as Device Drivers. Device drivers actually can be hooked in at many levels, of course, not just here. In this context MS calls disk drives "block devices". Block device drivers, or character device drivers for that matter, are not at all tough to write. They're probably a good second choice after the Network Redirector. A reference is the book "Writing MSDOS Device Drivers" by Robert Lai. DOS internally often calls software interrupts 25 and 26 for disk io. These are apparently inconsistent from DOS version to version. Skip this layer. If you need to go this far down, go all the way to INT 13. The lowest level of disk io short of hardware is INT 13. A good reference is Phoenix's "CBIOS Reference Manual". Watch out for quirks in INT 13's stack handling. There's also a good bit you have to do to keep DOS and your driver from tripping over each other. Unless others feel it's appropriate to use this bandwidth, email me for details. Doug

1 0

Re: WH email petition.
by smb＠research.att.com 03 Jun '93

03 Jun '93

> they've just gotten smarter about how they do it... Based on my past > experience, your name will be collected -- but just as a person > interested in certain issues, so that you can be solicited for funds > on certain issues. Does this really happen? WOW! Does it happen? Sure did circa 20 years ago, when individual members of Congress had much less computing capacity. I wrote to members of the House Judiciary committee demanding the impeachment of a certain unindicted co-conspirator. Over the next few years, I received a variety of funds solicitation letters, as some of those folks tried to move on to bigger and better offices. The letters invariably spoke of the members' ``bravery and courage of conviction'' during the Watergate investigation, and noted my interest in that subject...

1 0

Re: Crypto anarchy in a VW? (not the bug)
by wcs＠anchor.ho.att.com 03 Jun '93

03 Jun '93

> >There are a lot of ways to get a signal around the world without using a > >satellite, ask any amateur radio enthusiast. I thought the motivation for satellite at the beginning of this discussion was that it's extremely hard to find out WHO sent a transmission to a satellite - everybody's got a dish pointed UP at the same destination, the FCC isn't likely to go flying helicopters around to locate transmissions that could have come from anywhere in the country, and there's really nothing to direction-find on, and the receivers can similarly be anywhere, since it's a broadcast network. If the satellite uses some kind of protocol such as AlohaNet, you get reasonable shared utilization. (Of course, the alternatives to direction-finding are to go after the bird's owners, or to jam the transmission channel.) Moon-bounce offers similar advantages, and there aren't any owners to trace :-), though jamming is still possible. Another technique that's pretty obscure, and relatively low data rate, but pretty hard to trace, is meteor-burst, which reflects signals of the ionization trails left by micrometeors. Typical systems a few years ago transmitted at 4800 baud, getting effective throughput of maybe 300 bps, since the channel isn't constant. It was used for applications like sending snow depth reports back from mountains, since it needs very little power and isn't particularly bothered by weather conditions. Are networks like amateur packet radio hard to trace, assuming enough repeaters are around? > One of the really great techniques I've hear about recently is a data > channel that runs at 90% T1 speed over the ~900 MHz spread spectrum NCR WaveLAN, which is now also being OEMed by DEC, runs spread spectrum at (I think) 2 Mbps, and can use an optional DES chip for encryption. The PC cards are compatible with some vanilla Ethernet card, so it uses standard Ethernet protocols. In broadcast mode, range is only a few hundred meters, depending on building configurations, but it can also be used with a directional antenna to get 5-6 mile range. Bill Stewart

1 0

remailer flakiness
by Eli Brandt 03 Jun '93

03 Jun '93

I've been off the net for a few weeks, and my remailer's been running on auto-pilot. Checking my mail, I found that a number of messages for the remailer had ended up in my mailbox instead. However, logs also indicate that a fair bit of traffic went through the remailer, apparently successfully. A test of the remailer turned up no problems. If anybody knows or suspects that a message sent through me did indeed not get through, I'll bounce all of it back to myself for reprocessing. Otherwise, this might result in mail duplication. Eli ebrandt(a)jarthur.claremont.edu

1 0

Solidarity (kudos)
by fergp＠sytex.com 03 Jun '93

03 Jun '93

-----BEGIN PGP SIGNED MESSAGE----- I couldn't resist the opportunity to x-post this to the list, especially now that it makes me feel foolish for once suspecting the possibility of foul play at UUNet. My hat is off to Nat and all the folks at UUNet Technologies who share his views. Kudos. 8<------- Begin Forwarded Message ----------- From: nrh(a)daimajin.UU.NET (Nat Howard) Newsgroups: alt.privacy.clipper Subject: another letter to the president Date: 2 Jun 1993 19:41:01 -0400 Organization: UUNET Technologies Inc, Falls Church, VA, USA Lines: 41 NNTP-Posting-Host: daimajin.uu.net Summary: dump clipper Date: Wed, 02 Jun 1993 12:49:46 EDT To: PRESIDENT(a)WHITEHOUSE.GOV, VICE.PRESIDENT(a)WHITEHOUSE.GOV From: Nat Howard <nrh> Subject: Clipper initiative of 4/16/93 Sirs, As a citizen working in the communications field, I am gravely concerned by the 4/16/93 Clipper Chip initiative. I believe that the initiative as proposed cannot accomplish its stated goals, and will, if carried out, be poisonous to American business attempts to compete in the secure communications field. Far more important is the apparent denial in the press release of our First, Second, Fourth, Ninth, and Tenth Amendment rights: ... nor is the U.S. saying that "every American, as a matter of right, is entitled to an unbreakable commercial encryption product." I urge you to consider these actions instead: 1. Lift export controls on all cryptographic hardware and software. 2. Have the NSA work with NIST to produce a publicly-described algorithm, suitable for either hardware or software implementation, that can serve for the next 15 years as a follow-on to DES. 3. Find some fair and legal way so that all US Citizens can use, royalty-free and without other restriction, the public-key algorithms now patented by PKP. A lot of us have hopes for the human rights aspect of the Clinton-Gore ticket. Please don't let us down: withdraw, abandon, or greatly modify the Clipper Chip initiative. I emphasize that I speak here as a private citizen, and my remarks don't necessarily reflect the feelings of UUNET. 8<------- End of Forwarded Message --------- -----BEGIN PGP SIGNATURE----- Version: 2.2 iQCVAgUBLA4NhZRLcZSdHMBNAQGJjQP/Ty6YCVBsrNfmfWiuyRK/GWHvwkLBy5tE bJOUmwnyP2nD/febFSeIPSoheKEpvVNg6nZUM7BTNPAQ5SM+papyujs5NtQNbiGT TLLS55K0X+904Iszn3ROzc/QJNaQ/RSj+7vuI+yq3L9dTcOrbKNpnU/KePkISeIp toFDESkZDnY= =F+B7 -----END PGP SIGNATURE----- Paul Ferguson | The future is now. Network Integrator | History will tell the tale; Centreville, Virginia USA | We must endure and struggle fergp(a)sytex.com | to shape it. Stop the Wiretap (Clipper/Capstone) Chip.

1 0

Software infrastructure
by nobody＠soda.berkeley.edu 03 Jun '93

03 Jun '93

-----BEGIN PGP SIGNED MESSAGE----- Subject: Software infrastructure I like Eric's idea of a terminal program which can support encryption easily. Here are some thoughts. As Eric indicates, the issue is not so much building encryption into the program but rather of having _hooks_ by which extra functionality can be added. Encryption should be just one capability. Another might be to automatically drop into a stand-alone zmodem package like dsz or gsz so we don't have to re-implement zmodem ourselves. We had some related discussion on this last year when we were talking about the "crypto dongle". This was going to be a black box which would sit on the serial line between your PC and modem (or terminal and host computer) and would do encryption/decryption as the characters passed through it. Doing it in the terminal program, I could envision a hook which watched constantly for particular strings to be received from the host, like "-----BEGIN PGP MESSAGE-----". Several such watchdogs could be active at once. When one of them matches, it fires off a program. Or perhaps it just starts logging the incoming data to a file, and when it matches another string it fires a program. A simple scripting language could control these activities. The result would be that when you receive an encrypted message, you just list it out to your terminal and then, automatically, PGP fires up and asks you for your pass phrase (unless you SET it ahead of time in the PC's environment). It then displays the message for you. This simple model has several deficiencies. When I log into a Unix system, or Compuserve, or Portal's "Online" service, and read my mail, it is often shown to me a page at a time. This is so that I can read long messages more easily. Then after each message I can delete it, save it, reply to it, etc. If I do reply or if I want to create a new message it will drop me into a text editor to compose the message. The result is that the mail program you are running on the host computer may do some munging on the PGP message, like inserting "Press RETURN for next page" or perhaps some terminal control characters. These would have to be filtered out before PGP could run on the file, or you would have to be able to suppress them when you read this message. Also, assuming we could capture the message and run PGP on it automatically, the resulting decrypted message will have to be saved and given a file name. Then if the user wants to reply to it he is going to have to leave his terminal and run an editor. (At least, that's what I have to do now.) Plus, this only deals with the message-receiving problem, not the sending problem. I'm not sure what the solution is. Maybe the PC program needs to be more than a terminal program, and become more of a whole mail-processing program. Maybe you should just download your mail file en masse from the host to your PC, pre-process it to replace (in place) the incoming encrypted messages with plaintext versions (annotated to show validated signatures), then run a PC program which will display one message at a time, let you reply, save, etc. This way the decryptions are done before you even look at the mail file and incoming encrypted mail is treated on a first class basis (the same as other mail). Then for outgoing mail you'd like to be able to drop into a user-defined editor which is run with a command line causing his file to be saved to some temp file name. Then we can automatically encrypt the outgoing mail for him based on the destination, add a remailer chain if requested, etc. Then he gives a command and all his replies and new mail are uploaded and sent. This would be pretty tough to do since there are so many different ways of sending and receiving mail on host computers. This would again have to be a customizable part of the program, where we could provide modules to deal with the common cases of Unix running "mail", elm, mh, etc., and perhaps some of the commercial services. BBS's would ideally be handled as well. Hackers could contribute scripts for supporting their favorite mail system. I don't know anything about SLIP, or POP, or any other fancy ways of hooking a PC up to a workstation. I just use it as a terminal. Would these other protocols help solve the problems above, problems of how we marry an encryption program which must run on the PC with mail-handling programs which run on another computer? Hal Finney 74076.1041(a)compuserve.com -----BEGIN PGP SIGNATURE----- Version: 2.2 iQCVAgUBLAwkEagTA69YIUw3AQEuxQQAjeC/gwPHkLQZ0IladVRxiRdgARdE7ziu WWdmsHpaZ2tlq8wAXpSFbMpSZ3MS1U1TT/c/wB2DJOCuWkhs2y6WYoZiqrHz3hjA JyBSkpM1F3dYcZ8MchrjLZsur9KwXe0mIvM7VMu2Fdq+sMMgNwzEzqJoWhulAsnl weuBaeOjv7k= =zEUv -----END PGP SIGNATURE-----

4 4

Re: Crypto anarchy in a VW? (not the bug)
by Mark 03 Jun '93

03 Jun '93

>Another possibility until then, and one that would be fun for people who >like to play with EPROMS, is a card that had a cable leading to an external >EPROM socket that you could lay on your desk or on top of the case or >wherever. You burn your keys for the HD into a chip and use it as a key, >physically inserting the chip in the socket each time. There are lots >on new ways to make chips easy to plug in and out, I'm sure it wouldn't >be too hard. Heh, I have a system liek this, designed by Viglen in the UK. It was/is originally from the BBC micro to allow easy use of swapping over 'sideways' ROMS instead of opening the case. It's basically a ribbon cable with a 28way rom socket on the end with a edge connector socket on the other. Each ROM is enclosed in it's own sturdy tiny black package with an edge connector that slots into the socket that is mounted in the 'ashtray' of the Beeb. You could easily copy the idea with a rom socket, a length of ribbon cable and a ZIF socket to allow easy usage. The Viglen has pin protection so you dont spike the thing, so it's able to be used on the fly without power cycling. One thing about ROM's, they're faster than disks....easier to hide too :) >I still don't see why all of the actual encryption couldn't be done in >software though... Me either, apart from TEMPEST issues...Linux comes with slot in file system modules (as detailed in a letter to Jim) that you can easily adapt to your own uses. Ive been playing around with this idea for a while. Adding a desfs(tm) (me :) to a linux kernel is not going to be that hard I think.. (touch wood). Mark mark(a)coombs.anu.edu.au "liek", "smiel" and "soar" are derivatives of JenSpeak(tm). Spread the word.

3 3

whistle for Whistleblowing!
by L. Detweiler 03 Jun '93

03 Jun '93

>A quick update: Telecom Finland finally delivered. My uncontrolled, >no-AUP IP connection via EUnet (Copenhagen-Amsterdam-Alternet) went >operational yesterday. The new 486 box also arrived. Expected to go >into 100% service this weekend! Oh, the bright sun is shining through! This is absolutely perfect timing. I just ran rn and what did it have to report? alt.whistleblowing not in .newsrc -- Add unsubscribed? Cypherpunks, alt.whistleblowing has been created! Special thanks to Miron Cuperman, a First Class Grade A Cypherpunk, who took care of the electronic paperwork on this one after reading my desperate posting(s). (I don't understand though, at my site it didn't appear for over a week since the control message was sent out.) If it's not at your site send mail to your news administrator and ask if there's some kind of conspiracy going on to prevent you from seeing it :) I generally *don't* recommend that the Mycotronx postings be sent there (yet), even if someone can set up an untraceable path. I talked to the poster today and he has many plans for them that might be disrupted by any further publicity. In fact, he told me he *accidentally* posted them to the cypherpunks list! He thought it would just go to the `moderator' (Eric Hughes). Explains a bit. Watch for a FAQ to the group (possibly here first) and advertisements in other groups. Also: HOW TO CONTRIBUTE IMMEDIATELY. Find relevant material from any groups you have ever visited and FORWARD IT. Make sure to be very thorough in citing the source and background of the posting. Let the games begin! The doors are open! Fire away, soldiers! p.s. If anyone wants to run an interesting and critical project, I think that the `control' group should be monitored for message cancels in alt.whistleblower, cancelling parties should be *exposed*, and the cancelled postings in particular should be *preserved*.

2 1